8d74dd9d19c3a1dd8f1957cf95f56e04b7e490f4173ec7abc71999ad3c99942b | Triage

Sharing

General

Target

2dfc3a882a4548e7d1495670b213cc50N.exe
Size

99KB
Sample

240903-b3bjgstclp
MD5

2dfc3a882a4548e7d1495670b213cc50
SHA1

20a49510a2ac2fd37b0696ea4c99825c9ab0ed64
SHA256

8d74dd9d19c3a1dd8f1957cf95f56e04b7e490f4173ec7abc71999ad3c99942b
SHA512

666870c686db162fb48ee02590402d851e5f92bde172b24c05330d479c5513faf40973fd4e7b7e52791f3f833f213a48b0c041dd230622a25358a9144614c313
SSDEEP

3072:CFm/uA8zYZmq6wXydpNeyGspwoTRBmDRGGurhUI:ymL8zY66yd+jm7UI

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  2dfc3a882a4548e7d1495670b213cc50N.exe
- Size
  
  99KB
- MD5
  
  2dfc3a882a4548e7d1495670b213cc50
- SHA1
  
  20a49510a2ac2fd37b0696ea4c99825c9ab0ed64
- SHA256
  
  8d74dd9d19c3a1dd8f1957cf95f56e04b7e490f4173ec7abc71999ad3c99942b
- SHA512
  
  666870c686db162fb48ee02590402d851e5f92bde172b24c05330d479c5513faf40973fd4e7b7e52791f3f833f213a48b0c041dd230622a25358a9144614c313
- SSDEEP
  
  3072:CFm/uA8zYZmq6wXydpNeyGspwoTRBmDRGGurhUI:ymL8zY66yd+jm7UI
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence